CVE-2017-14411

A stack-based buffer overflow was discovered in copymp in interface.c in mpglibDBL, as used in MP3Gain version 1.5.2. The vulnerability causes an out-of-bounds write, which leads to remote denial of service or possibly code execution...

CVE-2017-14408

A stack-based buffer over-read was discovered in dct36 in layer3.c in mpglibDBL, as used in MP3Gain version 1.5.2. The vulnerability causes an application crash, which leads to remote denial of service...

CVE-2017-14408

A stack-based buffer over-read was discovered in dct36 in layer3.c in mpglibDBL, as used in MP3Gain version 1.5.2. The vulnerability causes an application crash, which leads to remote denial of service...

CVE-2017-14408

The CVE-2017-14408 entry relates to MP3Gain (mpglibDBL) where a stack-based buffer over-read in dct36 (layer3.c) can crash an affected application, enabling remote denial of service. Connected sources confirm this issue across multiple advisories for MP3Gain 1.5.2 and describe a similar pattern o...

CVE-2017-14411

CVE-2017-14411 affects MP3Gain 1.5.2 via a stack-based buffer overflow in copy_mp within interface.c of mpglibDBL, causing an out-of-bounds write that can lead to remote denial of service or potentially code execution. Multiple connected records (Red Hat, Mageia, OSV, CNVD, CNVD-2017-33787) corro...

CVE-2017-14408

A stack-based buffer over-read was discovered in dct36 in layer3.c in mpglibDBL, as used in MP3Gain version 1.5.2. The vulnerability causes an application crash, which leads to remote denial of service...

Scientific Linux Security Update : kernel on SL7.x x86_64 (20170912) (BlueBorne)

Security Fixes : - A stack-based buffer overflow flaw was found in the way the Bluetooth subsystem of the Linux kernel processed pending L2CAP configuration responses from a client. On systems with the stack protection feature enabled in the kernel CONFIGCCSTACKPROTECTOR=y, which is enabled on al...

ZScada Modbus Buffer 2.0 - Stack-Based Buffer Overflow Exploit

Exploit for windows platform in category remote exploits require 'msf/core' class MetasploitModule 'ZScada Net Buffer Overflow', 'Description' = %q This module exploits a stack based buffer overflow found in Z-Scada Net 2.0. The vulnerability is triggered when parsing the response to a Modbus...

CVE-2017-14265

A Stack-based Buffer Overflow was discovered in xtransinterpolate in internal/dcrawcommon.cpp in LibRaw before 0.18.3. It could allow a remote denial of service or code execution attack...

CVE-2017-14265

CVE-2017-14265 is a stack-based buffer overflow in LibRaw’s xtrans_interpolate function (internal/dcraw_common.cpp) present in LibRaw releases before 0.18.3. The vulnerability can allow a remote denial of service or code execution when processing crafted images. Public reports from Debian and Mag...

EulerOS 2.0 SP1 : poppler (EulerOS-SA-2017-1229)

According to the versions of the poppler packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A stack-based buffer overflow was found in the poppler library. An attacker could create a malicious PDF file that would cause applications tha...

EulerOS 2.0 SP2 : poppler (EulerOS-SA-2017-1230)

According to the versions of the poppler packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A stack-based buffer overflow was found in the poppler library. An attacker could create a malicious PDF file that would cause applications tha...

EulerOS 2.0 SP2 : libtasn1 (EulerOS-SA-2017-1172)

According to the versions of the libtasn1 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A heap-based buffer overflow flaw was found in the way the libtasn1 library decoded certain DER-encoded inputs. A specially crafted DER-encode...

EulerOS 2.0 SP1 : libtasn1 (EulerOS-SA-2017-1171)

According to the versions of the libtasn1 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A heap-based buffer overflow flaw was found in the way the libtasn1 library decoded certain DER-encoded inputs. A specially crafted DER-encode...

CVE-2017-13740

There is a stack-based buffer overflow in Liblouis 3.2.0, triggered in the function parseChars in compileTranslationTable.c, that will lead to denial of service or possibly unspecified other impact...

Debian DSA-3965-1 : file - security update

Thomas Jarosch discovered a stack-based buffer overflow flaw in file, a file type classification tool, which may result in denial of service if an ELF binary with a specially crafted .notes section is processed. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package...

[SECURITY] [DSA 3965-1] file security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3965-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso September 05, 2017 https://www.debian.org/security/faq -...

Ubuntu 14.04 LTS : FontForge vulnerabilities (USN-3409-1)

The remote Ubuntu 14.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3409-1 advisory. It was discovered that FontForge was vulnerable to a heap-based buffer over-read. A remote attacker could use a crafted file to DoS or execute arbitrary...

Ubuntu 14.04 LTS / 16.04 LTS : Liblouis vulnerabilities (USN-3408-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3408-1 advisory. It was discovered that an illegal address access can be made in Liblouis. A remote attacker can take advantange of this to access sensitive...

Debian: Security Advisory (DSA-3965-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...